AlpineWeb VPS Hosting

Enabling Better Spam Filtering

2007-07-13T13:48:48Z

Dear AlpineWeb Customer,

One of the most frequent requests we hear from our customers is to help reduce the

amount of unsolicited commercial email (spam) they receive in their email systems. In

addition to the other spam filtering options already available, we have recently

added a Sendmail RBL vinstall, which makes it possible for you to configure Sendmail

to check incoming email connections against lists of known spammers (real-time

blackhole lists, or RBLs) and then reject the connection before any email is accepted

or delivered. This tool eliminates spam as early in the email delivery process as

possible and significantly improves the performance of the email system and server in

general.

Because this is such an effective method of filtering spam, we will be enabling it by

default on all of our customers' accounts* after July 23, 2007. If you want to

proactively enable it according to your desired schedule, the vinstall is already

available on your VPS/MPS and you can run it today, or any time before July 23.

If, for some reason, you do not want this tool enabled on your system, please contact

us:

https://secure.alpineweb.com/helpdesk/

You can review additional information about RBLs at the links below:

(FreeBSD MPS/VPS v2/v3)
http://support.alpineweb.com/hosting/vps/freebsd/admin/email/spam/rbl.html

(Linux MPS/VPS)
http://support.alpineweb.com/hosting/vps/linux/admin/email/rbl.html

If you have any questions, please contact your account manager or technical support.

We are working hard to make your web hosting experience with AlpineWeb a productive

and positive one. We appreciate your business and hope to continue delighting you in

the future.

Kind regards,
The AlpineWeb Technical Department

***Is Your Data Safe?*** http://pcdatabackups.com

Subscribe to AlpineWeb VPS Hosting via email by entering your email address below:

Server Software Update Notification: 11-3-2006

2006-11-03T11:41:16Z

The following updates were completed 11/01/2006 on all servers:

FreeBSD VPS v3:

* OpenSSL

The OpenSSL toolkit for SSL/TLS for version 0.9.7e-p1 will be updated to addresses denial of service and buffer overflow security issues CVE-2006-2937, CVE-2006-2940, CVE-2006-3738, and CVE-2006-4343, discussed here:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2937
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2940
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3728
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4343
http://www.openssl.org/news/secadv_20060928.txt

More information about this security update can be found here:

http://security.freebsd.org/advisories/FreeBSD-SA-06:23.openssl.asc

No action needed.

* OpenSSH

The portable OpenSSH connectivity tool will be updated to version 4.4p1,1. This version addresses denial of service security issues, CVE-2006-4924 and CVE-2006-5051, discussed here:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4924
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5051

More information about version 4.4p1,1 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=9801+0+/usr/local/www/db/text/2006/cvs-all/20061008.cvs-all
http://www.freebsd.org/cgi/getmsg.cgi?fetch=329946+0+/usr/local/www/db/text/2006/cvs-all/20061008.cvs-all

No action needed.

* SpamAssassin

The vinstall for the SpamAssassin mail filter will be updated to install version 3.1.5_1. This version addresses issues with sa-learn. More information about version 3.1.5_1 can be found here:

http: HREF="mailto://www.freshports.org/mail/p5-Mail-SpamAssassin/files.php?message_id=200610020111.k921B6ga030762@repoman.freebsd.org">//www.freshports.org/mail/p5-Mail-SpamAssassin/files.php?message_id=200610020111.k921B6ga030762@repoman.freebsd.org

No action needed.

* ProFTPD

The ProFTPD GPL-licensed FTP server will be updated to version 1.3.0. This version addresses issues with Mac OS X, mod_ldap, SSL sessions, and several other issues. More information about version 1.3.0 can be found here:

http://www.proftpd.org/docs/RELEASE_NOTES-1.3.0

No action needed.

* ShopSite

The ShopSite shopping cart installation available with newly ordered servers will be updated to version 8.1.3.1. It will also be updated to address problems with certain Web server configurations. The new version addresses issues with Google Checkout, ShopSite OrderAnywhere, eCheck, and other bug fixes. More information about version 8.1.3.1 can be found here:

http://support.shopsite.com/kbase/view_answer.php?questionID=S5518

This version update only affects newly ordered server products. No action needed.

* Quota

The system files will be updated to address issues with subuser quotas. No action needed.

* ImageMagick

The ImageMagick image processing tools library will be updated to version 6.2.9.8. This version brings the utility to the most current FreeBSD version. More information about version 6.2.9.8 can be found here:

http: HREF="mailto://www.freshports.org/graphics/ImageMagick/files.php?message_id=200610052057.k95Kv4iD099383@repoman.freebsd.org">//www.freshports.org/graphics/ImageMagick/files.php?message_id=200610052057.k95Kv4iD099383@repoman.freebsd.org

No action needed.

* Samba

The vuninstall for the Samba SMB/CIFS software suite for file and print services will be updated to address problems with the vuninstall script. This update affects the vuninstall only. No action needed.

* GPG

GPG (GNU Privacy Guard or GnuPG) will be updated to version 1.4.5_1. This version brings the utility to the most current FreeBSD version and addresses cURL dependency issues. More information about the changes in version 1.4.5_1 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=1553872+0+/usr/local/www/db/text/2006/cvs-all/20061008.cvs-all

No action needed.

* LCMS

The Little Color Management System (LittleCms or LCMS) color management engine will be updated to version 1.15_1,1. This version brings the utility to the most current FreeBSD version and adds features to allow future supplementary utilities. More information about version 1.15_1,1 can be found here:

http: HREF="mailto://www.freshports.org/commit.php?message_id=200610081707.k98H7NVk056241@repoman.freebsd.org">//www.freshports.org/commit.php?message_id=200610081707.k98H7NVk056241@repoman.freebsd.org

No action needed.

* Ruby

The Ruby object-oriented scripting language will be updated to version 1.8.5_3,1. This version brings the language to the most current FreeBSD version and addresses issues with pkg-plist. More information about version 1.8.5_3,1 can be found here:

http: HREF="mailto://www.freshports.org/lang/ruby18/files.php?message_id=200610151046.k9FAkBhS087805@repoman.freebsd.org">//www.freshports.org/lang/ruby18/files.php?message_id=200610151046.k9FAkBhS087805@repoman.freebsd.org

No action needed.

* Libunrar

Libunrar, part of RAR: Roshal Archive data compression software, will be updated to version 3.6.8,1. This version brings the utility to the most current FreeBSD version and addresses issues with versioning and USE_LDCONFIG. More information about version 3.6.8,1 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=1695937+0+/usr/local/www/db/text/2006/cvs-all/20061001.cvs-all

No action needed.

* FreeType 2

The FreeType 2 portable TrueType font engine will be updated to version 2.2.1_1. This version brings the utility to the most current FreeBSD version and upgrades GNOME support. More information about version 2.2.1_1 can be found at these pages:

http: HREF="mailto://www.freshports.org/print/freetype2/files.php?message_id=200610140835.k9E8ZoE1028329@repoman.freebsd.org">//www.freshports.org/print/freetype2/files.php?message_id=200610140835.k9E8ZoE1028329@repoman.freebsd.org

http: HREF="mailto://www.freshports.org/print/freetype2/files.php?message_id=200610141603.k9EG3jYk040578@repoman.freebsd.org">//www.freshports.org/print/freetype2/files.php?message_id=200610141603.k9EG3jYk040578@repoman.freebsd.org

No action needed.

* Fontconfig

The fontconfig library for font customization and configuration will be updated to version 2.3.2_6,1. This version brings the utility to the most current FreeBSD version and upgrades GNOME support. More information about version 2.3.2_6,1 can be found at these pages:

http: HREF="mailto://www.freshports.org/commit.php?message_id=200610140835.k9E8ZoE1028329@repoman.freebsd.org">//www.freshports.org/commit.php?message_id=200610140835.k9E8ZoE1028329@repoman.freebsd.org

http: HREF="mailto://www.freshports.org/commit.php?message_id=200610162042.k9GKg1k6070381@repoman.freebsd.org">//www.freshports.org/commit.php?message_id=200610162042.k9GKg1k6070381@repoman.freebsd.org

No action needed.

* PathTools

The PathTools file specifications module will be updated to version 3.21. This version brings the utility to the most current FreeBSD version. More information about version 3.21 can be found here:

http: HREF="mailto://www.freshports.org/devel/p5-PathTools/files.php?message_id=200610051257.k95CvHva088557@repoman.freebsd.org">//www.freshports.org/devel/p5-PathTools/files.php?message_id=200610051257.k95CvHva088557@repoman.freebsd.org

No action needed.

* Python

The version number for the information for python-2.4 in the interactive vinstall mode will be corrected. This update affects the vinstall itself only. No action needed.

* Portupgrade

The Index-6.db file used by the Portupgrade FreeBSD ports/packages administration and management tool suite will be updated to reflect current packages and dependencies.

No action needed.

* Lynx

The Lynx command-line textual Web browser will be update to version 2.8.6p5. This version brings the utility to the most current FreeBSD version and addresses issues with missing files. More information about version 2.8.6p5 can be found at these pages:

http: HREF="mailto://www.freshports.org/www/lynx-current/files.php?message_id=200610040006.k9406uZV047593@repoman.freebsd.org">//www.freshports.org/www/lynx-current/files.php?message_id=200610040006.k9406uZV047593@repoman.freebsd.org

http: HREF="mailto://www.freshports.org/www/lynx-current/files.php?message_id=200610040011.k940BkKZ048499@repoman.freebsd.org">//www.freshports.org/www/lynx-current/files.php?message_id=200610040011.k940BkKZ048499@repoman.freebsd.org

No action needed.

* mutt next generation

The mutt next generation command-line email client will be updated to version 20060915. This version brings the utility to the most current FreeBSD version. More information about version 20060915 can be found here:

http: HREF="mailto://www.freshports.org/mail/mutt-ng/files.php?message_id=200610071558.k97FwsB8069280@repoman.freebsd.org">//www.freshports.org/mail/mutt-ng/files.php?message_id=200610071558.k97FwsB8069280@repoman.freebsd.org

No action needed.

*XML::LibXML

The XML::LibXML Perl module will be updated to version 1.61003_1. This version brings the module to the most current FreeBSD version and addresses issues with plist and XML::LibXML::XPathContext. More information about version 1.61003_1 can be found at these pages:

http://search.cpan.org/src/PAJAS/XML-LibXML-1.61003/Changes

No action needed.

* Net::DNS

The Net::DNS collection of DNS Perl modules will be updated to version 0.59. This version brings the modules to the most current FreeBSD version and addresses IPv6, NSEC support, and several other issues. More information about version 0.59 can be found here:

http://search.cpan.org/src/OLAF/Net-DNS-0.59/Changes

No action needed.

FreeBSD VPS v2:

* SpamAssassin

The vinstall for the SpamAssassin mail filter will be updated to install version 3.1.5. This version upgrade addresses several bug and documentation issues. More information about version 3.1.5 can be found here:

http://www.nabble.com/ANNOUNCE%3A-Apache-SpamAssassin-3.1.5-available%21-p6061264.html

To update existing SpamAssassin installations and keep the current program configuration, connect to your server through SSH and execute the following command from the prompt:

# vinstall spamassassin

Answer "yes" (the default) when prompted with the question "Would you like to overwrite/upgrade your existing installation? [yes]:" Answer "no" (the default) when asked "Would you like to setup Spam Assassin 3.1.5 to process *all* email received by this server now? [no]:" Finally, answer "no" (the default) when asked "Would you like to setup Spam Assassin 3.1.5 to process email for a particular user now? [no]:"

* Sendmail RBL

The vinstall for the Sendmail RBL (real-time blackhole list) subscription utility will be updated to add new lists and remove deprecated lists. The available lists will include the following:

sbl-xbl.spamhaus.org -> Spamhaus block list. SBL and XBL (Recommended)
sbl.spamhaus.org -> Spamhaus block list (SBL)
xbl.spamhaus.org -> Spamhaus block list (XBL)
list.dsbl.org -> Distributed Server Boycott List (DSBL)
multihop.dsbl.org -> Distributed Server Boycott List (DSBL)
relays.ordb.org -> Open Relay Database (ORDB)
dnsbl.ahbl.org -> List against abusers and spammers (AHBL)
dnsbl.njabl.org -> Not Just Another Bogus List (NJABL)
unconfirmed.dsbl.org -> Distributed Server Boycott List (DSBL)
whois.rfc-ignorant.org -> RFC Ignorant (Whois)
dnsbl.sorbs.net -> Spam and Open Relay Blocking System (SORBS)

No action needed.

*WordPress

The vinstall of WordPress will be updated to install version 2.0.4. The vinstall will also be updated to provide additional command-line options when installing WordPress. To obtain a full list of these options, connect to your server through SSH and execute the following from the command prompt:

# vinstall wordpress --help

An example of these new options is you can specify to install a language pack for WordPress during the vinstall. For example, the following installs the Japanese language pack:

# vinstall wordpress --lang=’ja’

Version 2.0.4 addresses several security and bug issues. More information about version 2.0.4 can be found here:

http://wordpress.org/development/2006/07/wordpress-204/

If you wish to upgrade your existing WordPress installation, make a backup of your current configuration and database. Then uninstall WordPress before running the following from an SSH command prompt (with or without command-line options):

# vinstall wordpress

Ignore warnings you receive regarding your existing MySQL database. After the vinstall completes, visit http://YOURDOMAIN/WORDPRESS/upgrade.php to complete the upgrade. Replace YOURDOMAIN and WORDPRESS with the domain and directory, respectively, in which WordPress is installed. Then replace your customizations and database from your backup.

* vroot

The vroot administration utility will be updated to include an option for “emergency” mode. This mode could be used if the administrative user inadvertently modifies their environment or login scripts in a way that prevents a valid login for the administrative user. This mode does not read the environment variables or any of the “.” files, such as .login, for the administrative user upon login. Type “e” at the vroot prompt to enter emergency mode. No action needed.

* ShopSite

The ShopSite shopping cart installation available with newly ordered servers will be updated to version 8.1.3.1. It will also be updated to address problems with certain Web server configurations. The new version addresses issues with Google Checkout, ShopSite OrderAnywhere, eCheck, and other bug fixes. More information about version 8.1.3.1 can be found here:

http://support.shopsite.com/kbase/view_answer.php?questionID=S5518

This version update only affects newly ordered server products. No action needed.

* PerlMagick

The PerlMagick Perl API module for ImageMagick will be added to the system Perl version 5.6.1. PerlMagick is an object-oriented Perl interface to ImageMagick which allows you to read, manipulate, or write an image or image sequence from within a Perl script. More information about PerlMagick can be found here:

http://www.imagemagick.org/script/perl-magick.php

No action needed.

* Portupgrade

The index.db file used by the Portupgrade FreeBSD ports/packages administration and management tool suite will be updated to address package corruption issues and to reflect current packages and dependencies. No action needed.

* pkg-config

The pkg-config installed libraries utility will be updated to version 0.21. This version brings the utility to the most current FreeBSD version. More information about version 0.21 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=583374+0+/usr/local/www/db/text/2006/cvs-all/20060917.cvs-all

No action needed.

* Xterm

The xterm terminal emulator will be updated to version 220. This version addresses issues with tek4014 mode. More information about version 220 can be found here:

http://dickey.his.com/xterm/xterm.log.html#xterm_220

No action needed.

* lftp

The lftp file transfer program will be updated to version 3.5.4_1. This version addresses several issues including issues with SSL keys, compilation, and du. More information about version 3.5.4_1 can be found here:

http://lftp.yar.ru/news.html

No action needed.

* Majordomo and MajorCool

The vinstalls for the Majordomo email list utility and the MajorCool web interface for Majordomo will be updated to include improved descriptions. This update affects the vinstall itself only. No action needed.

* Zsh

The zsh Unix command interpreter (shell) will be updated to version 4.3.2_1. This version addresses issues with the acroread. More information about version 4.3.2_1 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=1373221+0+/usr/local/www/db/text/2006/cvs-all/20060924.cvs-all

No action needed.

* Mhash

The mhash library for hash algorithms will be updated to version 0.9.7.1. This version addresses several issues including issues with Perl dependencies and PORTDOCS. More information about version 0.9.7.1 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=1491877+0+/usr/local/www/db/text/2006/cvs-all/20060924.cvs-all

No action needed.

* cURL

The cURL file transfer utility will be updated to version 7.15.5. This version adds new features and addresses several issues including issues with Curl_strerror, splay-tree, and the cookie parser. More information about version 7.15.5 can be found here:

http://curl.haxx.se/changes.html

No action needed.

FreeBSD VPS v1:

* ShopSite

The ShopSite shopping cart installation script will be updated to address problems with certain Web server configurations. This update only affects newly ordered server products. No action needed.

Signature:

* PHP

The PHP: Hypertext Preprocessor scripting language will be updated to version 4.4.4. This version brings the software to the most current 4.x version and addresses several issues, some dealing with security and vulnerabilities, including:

- Added missing safe_mode/open_basedir checks inside the error_log(), file_exists(), imap_open() and imap_reopen() functions.
- Fixed overflows inside str_repeat() and wordwrap() functions on 64bit systems.
- Fixed possible open_basedir/safe_mode bypass in cURL extension.
- Fixed overflow in GD extension on invalid GIF images.
- Fixed a buffer overflow inside sscanf() function.
- Fixed memory_limit restriction on 64 bit system.

More information about changes in version 4.4.4 can be found at these pages:

http://www.php.net/release_4_4_4.php
http://www.php.net/ChangeLog-4.php#4.4.4

No action needed.

* LibXML2 and LibXSLT

The LibXML2 and LibXSLT C parser libraries for XML will be updated to versions 2.6.26 and 1.1.17, respectively. These new versions bring the libraries to the most current FreeBSD version and address issues with portability, encoding buffers, and Xpath optimizations. More information about LibXML2 version 2.6.26 can be found here:

http://xmlsoft.org/news.html

More information about LibXSLT version 1.1.17 can be found here:

http://xmlsoft.org/XSLT/news.html

No action needed.

* Libtool and libltdl

The GNU Libtool generic library support script and its associated libltdl wrapper library will be updated to versions 1.5.22_2 and 1.5.22, respectively. These versions bring the utility to the most current FreeBSD version and address USE_REINPLACE issues. More information about Libtool version 1.5.22_2 can be found at these pages:

http: HREF="mailto://www.freshports.org/devel/libtool15/files.php?message_id=200602231040.k1NAejIs079900@repoman.freebsd.org">//www.freshports.org/devel/libtool15/files.php?message_id=200602231040.k1NAejIs079900@repoman.freebsd.org
http: HREF="mailto://www.freshports.org/devel/libtool15/files.php?message_id=200605042141.k44LfDYe040925@repoman.freebsd.org">//www.freshports.org/devel/libtool15/files.php?message_id=200605042141.k44LfDYe040925@repoman.freebsd.org

No action needed.

* XML::LibXML and XML::LibXSLT

The XML::LibXML and XML::LibXSLT Perl modules will be updated to version 1.60. This version addresses a memory leak in transform_file. More information about version 1.60 can be found at these pages:

http://search.cpan.org/src/PAJAS/XML-LibXML-1.60/Changes
http://search.cpan.org/src/PAJAS/XML-LibXSLT-1.60/Changes

No action needed.

* Gallery

The optional Gallery Website Component add-on will be updated to automatically select the Gallery language based the user’s browser locale.

No action needed.

* Control Panel

The Control Panel will be updated to correctly address empty submit fields and updating multiple Website Component add-on passwords at the same time.

No action needed.

Note: This notification could include technical inaccuracies or typographical errors. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.

Subscribe to AlpineWeb VPS Hosting via email by entering your email address below:

Server Software Update Notification: 11-3-2006

2006-11-03T11:40:09Z

The following updates were completed on 10/26/2006 on all servers:

FreeBSD VPS v3:

* CPX

The CPX server management Web interface was updated to address issues with running PHP 5 and CPX concurrently. No action needed.

* SpamAssassin

The SpamAssassin mail filter was updated to address issues with the installation and incorrect configuration. If you have previously installed SpamAssasin, update your installation by connection to your server through SSH and execute the following command:

# vinstall spamassassin

* XML::LibXML

The XML::LibXML Perl module was updated to version 1.61003_1. This version addresses the CPX and PHP 5 issues, brings the module to the most current FreeBSD version, and addresses issues with libxml2 and XML::LibXML::XPathContext. More information about version 1.61003_1 can be found at these pages:

http://search.cpan.org/src/PAJAS/XML-LibXML-1.61003/Changes

No action needed.

* XML::LibXSLT

The XML::LibXSLT Perl module was updated to version 1.61. This version addresses the CPX and PHP 5 issues and issues with error reporting. More information about version 1.61 can be found here:

http://search.cpan.org/src/PAJAS/XML-LibXSLT-1.61/Changes

No action needed.

Note: This notification could include technical inaccuracies or typographical errors. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.

Subscribe to AlpineWeb VPS Hosting via email by entering your email address below:

Server Software Update Notification: 10-16-2006 Critical Update

2006-10-16T10:24:26Z

The following emergency updates were completed late Tuesday (10/10/2006) on all servers:

FreeBSD VPS v2:

* OpenSSH

The portable OpenSSH connectivity tool was updated to version 4.4p1,1. This version addresses denial of service security issues, CVE-2006-4924 and CVE-2006-5051, discussed here:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4924
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5051

More information about version 4.4p1,1 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=9801+0+/usr/local/www/db/text/2006/cvs-all/20061008.cvs-all
http://www.freebsd.org/cgi/getmsg.cgi?fetch=329946+0+/usr/local/www/db/text/2006/cvs-all/20061008.cvs-all

No action needed.

* OpenSSL

The OpenSSL toolkit for SSL/TLS was updated to version 0.9.7l. This version addresses denial of service and buffer overflow security issues CVE-2006-2937, CVE-2006-2940, CVE-2006-3738, and CVE-2006-4343, discussed here:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2937
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2940
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3728
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4343
http://www.openssl.org/news/secadv_20060928.txt

More information about 0.9.7l can be found here:

http://cvs.openssl.org/getfile?f=openssl/CHANGES
http://www.openssl.org/news/announce.html

No action needed.

FreeBSD VPS v1:

* OpenSSH

The portable OpenSSH connectivity tool was updated to version 4.4p1,1. This version addresses denial of service security issues, CVE-2006-4924 and CVE-2006-5051, discussed here:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4924
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5051

More information about version 4.4p1,1 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=9801+0+/usr/local/www/db/text/2006/cvs-all/20061008.cvs-all
http://www.freebsd.org/cgi/getmsg.cgi?fetch=329946+0+/usr/local/www/db/text/2006/cvs-all/20061008.cvs-all

No action needed.

Note: This notification could include technical inaccuracies or typographical errors. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.

Subscribe to AlpineWeb VPS Hosting via email by entering your email address below:

Server Software Update Notification: 10-02-2006

2006-10-02T21:22:31Z

The following updates will be completed 10/04/2006 on all servers:

FreeBSD VPS v2:

* CPX

The CPX server management web interface will be updated with new functionality and help. These updates include a podcasting management section to manage the delivery of podcasts through the CPX interface.

No action needed; refer to prior reseller email announcements for details and documentation.

* Samba

The vinstall for the Samba SMB/CIFS software suite for file and print services will be updated to install version 3.0.23b. This version addresses issues with unqualified names, signing errors, and join failures. More information about changes in version 3.0.23b can be found here:

http://www.samba.org/samba/history/samba-3.0.23b.html

To install Samba 3 or upgrade to the new version, connect to your server through SSH and execute the following command from the prompt:

# vinstall samba3

Note: To upgrade existing installations of Samba 3.x, make a backup of your configuration and uninstall the application using “vuninstall samba3” before running “vinstall samba3” (above).

* Sendmail RBL

The vinstall for the Sendmail RBL (real-time blackhole list) subscription utility will be updated to include a quiet install option. A vuninstall for Sendmail RBL will also be introduced to the system. To use the quiet method, connect to your server through SSH and execute the following command from the prompt:

# vinstall sendmail-rbls -q

The quiet option will configure Sendmail to subscribe to the Spamhaus SBL and XBL (sbl-xbl.spamhaus.org) list only.

The new vuninstall will backup the /etc/mail/your.hostname.mc file to /etc/mail/your.hostname.mc.bak and /etc/mail/your.hostname.cf to /etc/mail/your.hostname.cf.bak and then remove all real-time blackhole list subscription information from the /etc/mail/sendmail.cf file.

This update affects the vinstall and vuninstall only. No action needed.

* pkg-config

The pkg-config installed libraries utility will be updated to version 0.20_3. This version addresses issues with -Wl,-rpath and -Wl,--rpath. More information about version 0.20_3 can be found here:

http: HREF="mailto://www.freshports.org/devel/pkg-config/files.php?message_id=200609021818.k82IIVUW052953@repoman.freebsd.org">//www.freshports.org/devel/pkg-config/files.php?message_id=200609021818.k82IIVUW052953@repoman.freebsd.org

No action needed.

* Ruby

The Ruby object-oriented scripting language will be updated to version 1.8.5,1. This version brings the language to the most current FreeBSD version and addresses bugs and maintainer issues. More information about version 1.8.5,1 can be found at these pages:

http: HREF="mailto://www.freshports.org/lang/ruby18/files.php?message_id=200608270953.k7R9rSJH006327@repoman.freebsd.org">//www.freshports.org/lang/ruby18/files.php?message_id=200608270953.k7R9rSJH006327@repoman.freebsd.org
http: HREF="mailto://www.freshports.org/lang/ruby18/files.php?message_id=200609131112.k8DBCsfw084543@repoman.freebsd.org">//www.freshports.org/lang/ruby18/files.php?message_id=200609131112.k8DBCsfw084543@repoman.freebsd.org

No action needed.

* Reply-o-Matic

The Reply-o-Matic auto-reply software will be updated to version 1.4.1. This version addresses an email security and child process exit issues. More information about version 1.4.1 can be found here:

https://sourceforge.net/project/shownotes.php?release_id=441818&group_id=43390

No action needed.

* ImageMagick

The ImageMagick image processing tools library will be updated to version 6.2.9.3. This version brings the utility to the most current FreeBSD version and addresses heap and stack overflow security issues CVE-2006-3743 and CVE-2006-3744, discussed here:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3743
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3744

More information about version 6.2.9.3 can be found here:

http://www.freebsd.org/cgi/query-pr.cgi?pr=ports/102817

No action needed.

* Portupgrade

The index.db file used by the Portupgrade FreeBSD ports/packages administration and management tool suite will be updated to reflect current packages and dependencies. No action needed.

* NcFTP

The NcFTP free set of FTP programs will be updated to version 3.2.0. This version addresses several bugs and introduces features. More information about version 3.2.0 can be found here:

http://www.ncftp.com/ncftp/doc/changelog.html

No action needed.

* Vim-lite

The vim-lite editor will be updated to version 7.0.94. This version updates the utility and addresses minor issues. More information about version 7.0.94 of the full vim package can be found here:

http: HREF="mailto://www.freshports.org/editors/vim/files.php?message_id=200609100244.k8A2iJcm047647@repoman.freebsd.org">//www.freshports.org/editors/vim/files.php?message_id=200609100244.k8A2iJcm047647@repoman.freebsd.org

No action needed.

* Xterm

The xterm terminal emulator will be updated to version 219. This version addresses issues with widgets and form-events. More information about the changes in version 219 can be found here:

http://dickey.his.com/xterm/xterm.log.html#xterm_219

No action needed.

Note: This notification could include technical inaccuracies or typographical errors. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.

Subscribe to AlpineWeb VPS Hosting via email by entering your email address below:

Server Software Update Notification: 09-18-2006

2006-09-18T14:19:42Z

Server Software Notification

The following updates will be completed 09/20/2006 on all servers:

FreeBSD VPS v2:

* MySQL

The vinstall for the MySQL 4.1.x database management system will be updated to install version 4.1.21. This version brings the MySQL 4.1 vinstall to the most current version of MySQL 4.1.x and addresses a security issue, CVE-2006-3469, discussed here:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3469

More information about changes in MySQL 4.1.21 can be found here:

http://dev.mysql.com/doc/refman/4.1/en/news-4-1-21.html

To install MySQL, connect to your server through SSH and run the following from the command prompt:

# vinstall mysql

Note: To upgrade existing installations, make a backup of all databases, shutdown MySQL, and uninstall the current version before running "vinstall mysql" (above). For considerations in upgrading between versions of MySQL, including avoiding data loss, see:

http://dev.mysql.com/doc/refman/4.1/en/upgrade.html

* PHP

The vinstall for the PHP: Hypertext Preprocessor scripting language will be updated to install version 4.4.4. This version brings the software to the most current 4.x version and addresses several issues, some dealing with security and vulnerabilities, including:

More information about changes in version 4.4.4 can be found at these pages:

http://www.php.net/release_4_4_4.php
http://www.php.net/ChangeLog-4.php#4.4.4

To install PHP or upgrade existing installations to the new version, connect to your server through SSH and execute the following command from the prompt:

# vinstall php4

* ClamAV

ClamAV, a GPL virus scanner, will be updated to version 0.88.4. This version brings the utility to the most current stable build and addresses overflow issue. More information about changes in version 0.88.4 can be found here:

http://sourceforge.net/project/shownotes.php?release_id=437903

If you are using the current default installation no action is needed. If you are using a legacy version of ClamAV and you want to take advantage of this update, or wish to install ClamAV, connect to your server through SSH and execute the following command from the prompt:

# vinstall clamav

Note: With legacy version upgrades, if you wish to keep your current ClamAV configuration, you may use the above vinstall to upgrade the program and answer "no" when prompted "Would you like to configure your ClamAV installation? [yes]:" to keep your current configuration.

* Sendmail RBL

The recently introduced Sendmail RBL (real-time black hole) subscription vinstall will be updated to improve error checking and remove deprecated and old lists. The available lists will include the following:

sbl-xbl.spamhaus.org -> Spamhaus block list. SBL and XBL (Recommended)
sbl.spamhaus.org -> Spamhaus block list (SBL)
xbl.spamhaus.org -> Spamhaus block list (XBL)
multihop.dsbl.org -> Distributed Server Boycott List (DSBL)
relays.ordb.org -> Open Relay Database (ORDB)
dnsbl.njabl.org -> Not Just Another Bogus List (NJABL)
dnsbl.sorbs.net -> Spam and Open Relay Blocking System (SORBS)
spews.relays.osirusoft.com -> SPEWS
unconfirmed.dsbl.org -> Distributed Server Boycott List (DSBL)
whois.rfc-ignorant.org -> RFC Ignorant (Whois)
list.dsbl.org -> Distributed Server Boycott List (DSBL)

No action needed.

* vadduser

The vadduser command-line utility will be updated to disallow the exclamation mark (!) in the full name field. This update affects the vadduser utility only. No action needed.

* Dada Mail

The vinstall for the Dada Mail list manager will be updated to address problems with password checking. This update affects the vinstall only. No action needed.

* ARC

The ARC archive and file compression utility will be updated to version 5.21o_1. This version brings the utility to the most current FreeBSD version and addresses issues with DESTDIR, NOPORTDOCS, PORTREVISION, and other elements. More information about version 5.21o_1 can be found at these pages:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=2045746+0+/usr/local/www/db/text/2006/cvs-all/20060813.cvs-all
http://www.freebsd.org/cgi/getmsg.cgi?fetch=1177933+0+/usr/local/www/db/text/2006/cvs-all/20060827.cvs-all

No action needed.

* Portupgrade

Portupgrade, a FreeBSD ports/packages administration and management tool suite, will be updated to version 2.1.3.3_1,2. This version addresses issues with descriptions and URLs. More information about version 2.1.3.3_1,2 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=1921034+0+/usr/local/www/db/text/2006/cvs-all/20060827.cvs-all

No action needed.

* UNARJ

The UNARJ extract-only archive utility will be updated to version 2.65_2. This version brings the utility to the most current FreeBSD version and addresses issues with DESTDIR, NOPORTDOCS, PORTREVISION, and other elements. More information about version 2.65_2 can be found at these pages:

http: HREF="mailto://www.freshports.org/commit.php?message_id=200608110612.k7B6Cqcv024966@repoman.freebsd.org">//www.freshports.org/commit.php?message_id=200608110612.k7B6Cqcv024966@repoman.freebsd.org
http://www.freebsd.org/cgi/getmsg.cgi?fetch=1209361+0+/usr/local/www/db/text/2006/cvs-all/20060827.cvs-all

No action needed.

* LCMS

The Little Color Management System (LittleCms or LCMS) color management engine will be updated to version 1.15,1. This version brings the utility to the most current FreeBSD version and addresses issues with CMYK transforms, absolute colorimetric transforms, gamut check transforms, and many other elements. More information about version 1.15,1 can be found here:

http://www.littlecms.com/whatsnew.htm

No action needed.

* lftp

The lftp file transfer program will be updated to version 3.5.4. This version brings the utility to the most current version and addresses several issues with modules, core dumps, keys, and other elements. More information about version 3.5.4 can be found here:

http://lftp.yar.ru/news.html

No action needed.

* Unrar

The unrar archive utility, part of RAR: Roshal Archive data compression software, will be updated to version 3.60,4. This version brings the utility to the most current FreeBSD version. More information about version 3.60.4 can be found at these pages:

http: HREF="mailto://www.freshports.org/archivers/unrar/files.php?message_id=200608170146.k7H1kWTE017993@repoman.freebsd.org">//www.freshports.org/archivers/unrar/files.php?message_id=200608170146.k7H1kWTE017993@repoman.freebsd.org
http: HREF="mailto://www.freshports.org/archivers/unrar/files.php?message_id=200608170147.k7H1l7SD018061@repoman.freebsd.org">//www.freshports.org/archivers/unrar/files.php?message_id=200608170147.k7H1l7SD018061@repoman.freebsd.org

No action needed.

* Autoconf

The GNU Autoconf extensible package of m4 macros version 2.59_2 will be added to the system. No action needed.

* Tcl

A vuninstall for the Tcl scripting language will be introduced to the system. No action needed.

* Vim-lite

The vim-lite editor will be updated to version 7.0.66. This version updates the utility and addresses minor issues. More information about version 7.0.66 of the full vim package can be found here:

http://www.freebsd.org/cgi/cvsweb.cgi/ports/editors/vim/Makefile#rev1.281

No action needed.

* FreeType 2

The FreeType 2 portable TrueType font engine will be updated to version 2.1.10_5. This version addresses issues with PCF fonts. More information about version 2.1.10_5 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=1183462+0+/usr/local/www/db/text/2006/cvs-all/20060827.cvs-all

No action needed.

* Xterm

The xterm terminal emulator will be updated to version 218. This version addresses issues with illegal characters, menu labels, and builds with older systems. More information about the changes in version 218 can be found here:

http://dickey.his.com/xterm/xterm.log.html#xterm_218

No action needed.

* XFree86-Server

The XFree86-Server X Windows system server will be updated to version 4.5.0_4. This version addresses issues with PCF fonts. More information about the changes in version 4.5.0_4 can be found here:

http://www.freebsd.org/cgi/getmsg.cgi?fetch=2114470+0+/usr/local/www/db/text/2006/cvs-all/20060827.cvs-all

No action needed.

Note: This notification could include technical inaccuracies or typographical errors. Changes can be made to the information herein; these changes will be distributed in new notifications. AlpineWeb might make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time.

Subscribe to AlpineWeb VPS Hosting via email by entering your email address below:

AlpineWeb VPS Hosting

Enabling Better Spam Filtering

Server Software Update Notification: 11-3-2006

Server Software Update Notification: 11-3-2006

Server Software Update Notification: 10-16-2006 ** Critical Update **

Server Software Update Notification: 10-02-2006

Server Software Update Notification: 09-18-2006

Server Software Update Notification: 10-16-2006 Critical Update